Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58061.roa
File: AS58061.roa (raw, json)
Hash identifier: hhpLmcfrAb8saf+Z6qiojvVN+EqHG0qB+8fcfD04CLs=
Subject key identifier: E6:39:87:6E:79:46:A3:E1:4C:D1:2D:7D:E7:40:A4:ED:81:CC:0D:E2
Certificate issuer: /CN=c2302af143c15daad50042d8455e689d0828eca9
Certificate serial: 03725292A57A04FCB13F74A6DEC0B25319AF23D3
Authority key identifier: C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58061.roa
Signing time: Sun 25 Feb 2024 13:50:06 +0000
ROA not before: Sun 25 Feb 2024 13:45:06 +0000
ROA not after: Sun 23 Feb 2025 13:50:06 +0000
asID: 58061
IP address blocks: 141.11.82.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 13:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:72:52:92:a5:7a:04:fc:b1:3f:74:a6:de:c0:b2:53:19:af:23:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2302af143c15daad50042d8455e689d0828eca9
Validity
Not Before: Feb 25 13:45:06 2024 GMT
Not After : Feb 23 13:50:06 2025 GMT
Subject: CN=E639876E7946A3E14CD12D7DE740A4ED81CC0DE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5f:c1:e0:db:b7:b2:74:65:34:11:60:8e:48:
cf:18:cc:2d:5d:6e:ff:67:a0:53:e1:66:42:57:a3:
de:0f:a9:37:ea:e9:cc:c8:30:a3:6f:4f:94:c6:fb:
f7:47:65:6e:8b:be:18:03:2a:17:2a:fe:38:a9:2a:
fb:1d:89:54:c3:33:bf:c0:88:49:f2:15:18:a5:51:
58:25:8f:c7:74:69:75:5b:16:45:4e:9a:40:9d:f7:
59:0d:d1:b1:3a:1e:1a:71:7e:97:a8:5d:46:da:00:
6b:f5:73:54:81:09:9c:c1:9e:05:0d:bf:88:d0:5b:
6a:56:bc:22:13:d7:25:76:88:7b:0e:5d:cf:75:e2:
d5:08:27:fe:e4:91:0c:7d:8a:5c:2e:83:40:89:98:
60:bf:90:b8:4b:2d:29:0f:51:ff:9b:84:88:3d:35:
cc:f3:49:98:c9:63:0e:3c:f8:3d:b0:05:23:4e:22:
77:48:71:1a:db:fc:70:48:2e:94:5f:17:3d:45:3c:
a8:57:0e:33:b3:64:58:4e:50:2f:b6:73:4c:74:d6:
cf:b7:a4:77:b1:fd:bf:c0:fc:35:d7:b4:e3:a3:ff:
83:3e:c7:69:7d:fd:c5:dc:17:1a:c6:d2:ca:3d:e1:
aa:0c:7e:3c:f9:bd:e6:dd:2c:4f:85:7e:49:0d:91:
4a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:39:87:6E:79:46:A3:E1:4C:D1:2D:7D:E7:40:A4:ED:81:CC:0D:E2
X509v3 Authority Key Identifier:
keyid:C2:30:2A:F1:43:C1:5D:AA:D5:00:42:D8:45:5E:68:9D:08:28:EC:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/C2302AF143C15DAAD50042D8455E689D0828ECA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjAq8UPBXarVAELYRV5onQgo7Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a93cb55c-9571-44c8-90e1-965b92769e4e/0/AS58061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.11.82.0/23
Signature Algorithm: sha256WithRSAEncryption
16:f8:ef:85:28:d1:6a:45:33:55:0c:c0:93:20:24:15:9d:12:
93:84:a7:d6:de:8c:35:98:40:6c:95:13:82:23:24:bd:30:08:
49:43:b0:b7:65:05:4b:6b:05:07:b6:1f:31:da:07:d9:45:64:
3a:e8:17:5d:67:58:ef:4c:43:7c:89:9d:34:7c:15:86:23:0a:
48:7c:20:07:db:cb:6d:ce:f1:d7:e6:ee:4b:e0:2a:56:69:17:
54:fb:f3:aa:30:50:88:b3:dd:cf:0c:d8:61:3c:30:bb:28:a3:
96:22:a6:39:b2:b6:b4:29:29:f4:c3:f2:5b:f4:ca:5f:6d:bb:
c4:4d:fc:5d:83:c7:60:c2:aa:49:e0:e0:a0:a2:a7:84:e9:a7:
86:6d:94:8f:01:84:2c:17:b2:eb:0a:e8:44:23:bc:ac:e9:16:
6f:e9:1d:31:be:f6:c4:db:fa:a2:1c:72:06:e2:4c:c6:3e:ab:
34:9f:e7:65:d3:0b:a4:6e:8e:d5:2b:45:d4:91:12:72:4a:35:
f2:dc:e3:f3:d8:77:de:79:2f:e6:5b:b2:7b:e5:bc:f0:40:e4:
c8:fc:b4:2b:40:e3:33:30:0e:d5:47:5b:5d:b3:c0:37:50:41:
d2:57:a1:6c:2b:c0:ef:81:b3:e9:a3:25:46:65:a9:f4:51:08:
a7:71:71:85
-----BEGIN CERTIFICATE-----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Generated at Wed Feb 28 17:27:46 2024 by rpki-client on console-fra.rpki-client.org